User authorization system for transactions

ABSTRACT

A system and method for obtaining user approval for transactions. The system includes an authorization system that is communicably coupled to one or more transaction computer systems that execute at least some transactions that require user approval. When a transaction system is seeking to execute a transaction that requires user approval, the transaction system sends a user approval request to the authorization system. The authorization system then retrieves the user&#39;s communication preference from a database and transmits an affirmatively actionable message to the user according to the retrieved communication preference. The messages can include an email with an approval link to click or a text message that the can be replied to. When the authorization system receives confirmation from the user that the user approves the request, the authorization system then transmits approval for the transaction to the appropriate transaction system, which then proceeds to execute the transaction.

BACKGROUND

In many client services firms, such as financial services firms, there can be a large variety of activities performed by the firm that require affirmative client consent for each occurrence of the activity, such as moving money, paying bills, trading securities, or distributing funds. Client authorization systems that obtain authorization from the client via a phone call, a fax, or via the mail are slow, expensive, and subject to fraud.

SUMMARY

Firms providing client services often need to obtain approval from clients to execute transactions on their behalf. In one aspect, a system for obtaining user approval for transactions can include a central authorization computer system that is communicably coupled to a set of transaction computer systems that are each programmed to execute various transactions on behalf of users, such as performing wire transfers, trading securities, and so on. The authorization system can coordinate and obtain approval from the relevant user for each transaction that the transaction systems are seeking to execute by receiving a request from the transaction systems that identifies a particular transaction and the user identity associated with the transaction, retrieving the user's communication preference from a database, and then transmitting a message to the user as dictated by the retrieved communication preference. The message can include, for example, a text message, an email, a push notification delivered through a smartphone application, and any other message type to which the user can provide an affirmative response to approve the transaction. When the user approves the transaction by affirmatively responding to the message, the authorization system receives the user confirmation and then relays the approval for the transaction to the relevant transaction system, which then proceeds to execute the transaction.

The presently described system simplifies and consolidates the processes associated with obtaining approval from clients to execute various types of transactions by a firm's various systems by having each of the each of the transaction systems connected to a single authorization system, which then obtains approval from the relevant user for the relevant transaction(s). Utilizing a single system for coordinating and obtaining user approvals for transactions originating from disparate systems provides users with a single, consistent process to approve transactions in a manner that they are able to dictate through their user preferences, obviates the need for redundant storage of user communication preferences and other such data, and is more secure than conventional systems because it automates the process to obtain user approval and eliminates security risks that could arise from every individual transaction system having its own dedicated authorization process with its own potential vulnerabilities. Furthermore, the authorization system is flexible in that it can coordinate and obtain user approval for any type of transaction from any type of transaction system.

These and other benefits of the present invention will be apparent from the description that follows.

FIGURES

The features of various aspects are set forth with particularity in the appended claims. The various aspects, however, both as to organization and methods of operation, together with further objects and advantages thereof, may best be understood by reference to the following description, taken in conjunction with the accompanying drawings as follows.

FIG. 1 illustrates a logic flow diagram of a process for obtaining user approval for a transaction, in accordance with at least one aspect of the present disclosure.

FIG. 2 illustrates a block diagram of a system for obtaining user approval for a transaction, in accordance with at least one aspect of the present disclosure.

DESCRIPTION

Certain aspects will now be described to provide an overall understanding of the principles of the structure, function, manufacture, and use of the devices and methods disclosed herein. One or more examples of these aspects are illustrated in the accompanying drawings. Those of ordinary skill in the art will understand that the devices and methods specifically described herein and illustrated in the accompanying drawings are non-limiting example aspects and that the scope of the various aspects is defined solely by the claims. The features illustrated or described in connection with one aspect may be combined with the features of other aspects. Such modifications and variations are intended to be included within the scope of the claims. Furthermore, unless otherwise indicated, the terms and expressions employed herein have been chosen for the purpose of describing the illustrative aspects for the convenience of the reader and not to limit the scope thereof.

FIG. 1 illustrates a logic flow diagram of a process 100 for obtaining user approval for a transaction, in accordance with at least one aspect of the present disclosure. In the following description of the process 100, reference should also be made to FIG. 2. In FIG. 2, an authorization system 200 is communicably coupled to a series of transaction systems 210 to form a computer network for a firm or organization. The authorization system 200 includes a computer system that is programmed to obtain user approval for transactions being carried out by the transaction systems 210. The transaction systems 210 can include a series of computer systems associated with the firm or organization for processing and executing transactions for clients that require client approval, such as a wire transfer transaction system 212, a trading transaction system 214 (e.g., for trading securities), a bill pay transaction system 216, and so on. The authorization system 200 can be connected to any number or type of transaction systems 210. In one aspect, the process 100 can be executed by a processor or control circuit, such as the processor 202 of the authorization system 200 depicted in FIG. 2. Accordingly, the process 100 can be embodied as a set of computer readable instructions stored in the memory 204 of the authorization system 200 that, when executed by the processor 202 coupled to the memory 204, causes the authorization system 200 to perform the functions described herein.

At step 102 of the process 100, the authorization system 200 receives a request to obtain user approval for a transaction from one or more of the transaction systems 210. The request can include the identity of the originating transaction system 210, the transaction type, and/or the user identity associated with the transaction. The user identity can include a username or other credentials associated with a user account, an identification number (e.g., a social security number), an email address, and so on. In one aspect, the transaction systems 210 are connected to the authorization system 200 through an application program interface so that the authorization system 200 receives data from each of the transaction systems 210 in a consistent format.

At step 104, the authorization system 200 retrieves the communication preferences for the given user identity. In one aspect, the authorization system 200 is connected to a user contact database 220 that stores the aforementioned data and the authorization system 200 queries the user contact database 220 with the user identity to retrieve the communication preference and contact information data for the given user identity. The communication preference data can indicate, for example, the user's contact information (e.g., telephone number or email), the methods of communication (e.g., push notification, text, or email) by which the user has indicated that they wish to be communicated with, whether the user wishes to be contacted via multiple different messaging mediums, and so on. The communication preference data can be, for example, selected by the user when the user establishes his or her user account with the firm and then uploaded to the user contact database 220 upon completion of the user account creation process.

At step 106, the authorization system 200 transmits a message to one or more user clients 230 (e.g., a mobile phone) delineated by the retrieved user contact information according to the retrieved contact preferences. The message can include a push notification delivered via the mobile phone app of the firm, a text message, an email, and so on, or a combination of messaging mediums, as dictated by the user's contact preferences. The message generated by the authorization system 200 is configured to obtain approval from the client. In one aspect, the message can include a uniquely generated confirmation link that, when clicked, transmits approval for the transaction to the authorization system 200. In another aspect, the message can prompt the user to reply yes or no to the message. If the user replies yes to the message, then the approval for the transaction is transmitted to the authorization system 200. In yet another aspect, the message can prompt the user to reply with or enter a code or other unique identifier associated with the user identity to confirm that the user is in fact the individual approving the transaction. In yet another aspect, multiple messages in different messaging mediums can be sent to the user contact information requiring tandem action for the transaction to be approved. For example, the user can be sent an email with a link to enter a code to approve the transaction and a text containing the code. Any of these or other techniques, such as multi-factor authentication techniques, can be utilized to transmit messages to users to obtain approval for transactions. The authorization system 200 may include or be connected to various notification systems for initiating the transmission of messages to users. In one aspect, the authorization system 200 can publish messages to a notification system, such as Amazon Simple Notification Service or Google Cloud Messaging, which then sends the message via SMS, a push notification, or another messaging medium, as desired.

At step 108, the authorization system 200 receives confirmation from the user. The manner in which the confirmation is received depends upon the medium by which the message was transmitted, as described above. For example, if an email containing a verification link is transmitted to the user, clicking the link can execute a script that updates a database entry indicating that the user has clicked the link. Accordingly, the authorization system 200 can query the database and determine whether confirmation has been received from the user based on the corresponding database entry. As another example, if a text message prompting the user to reply yes or no to the message has been sent to the user, the reply to the text message can be relayed to the notification system (e.g., Google Cloud Messaging), which then relays the message to the authorization system 200 in association with the user credentials (e.g., cell phone number). Accordingly, the authorization system 200 can determine whether the reply indicates that the user approves the transaction (i.e., the reply text message is “y,” “yes,” “approved,” and so on). In some aspects, additional techniques can be utilized the client from which confirmation is received by the authorization system 200, such as multi-factor authentication technique or determining whether the confirmation was sent from a device that was pre-registered by the user associated with the transaction. Upon receiving confirmation from the user, the authorization system 200 determines the identity of the transaction system 210 to which the user approval is to be communicated and then, at step 110, transmits said approval to the originating transaction system 210. Upon receiving the user approval, the particular transaction system 210 can then proceed to execute the transaction (e.g., initiate the wire transfer or move the designated money between bank accounts).

In one aspect, the authorization system 200 can be programmed to transmit separate confirmation messages for each individual transaction for which a transaction system 210 is seeking approval. In another aspect, the authorization system 200 can be programmed to wait for a particular time interval prior to transmitting a confirmation message to the user (at step 106). The time interval can be on the order of milliseconds, seconds, minutes, and so on. If any additional requests associated with the given user identity are received by the authorization system 200 from either the same or different transaction systems 210 during that time interval, the authorization system 200 can be programmed to transmit a single confirmation message to the user device indicated by the retrieved contact information for the batch of approval requests. Accordingly, the authorization system 200 can be programmed to transmit approval for the batch of transactions to the originating transaction system 210 associated with each approval request (at step 110) when confirmation is received from the user (at step 108). In this aspect, the authorization system 200 is configured to seek simultaneous approval for multiple transactions requiring user approval, streamlining the approval process for the client and avoiding the need to send an individual message (or set of messages) for each and every approval request.

In various aspects, the authorization system 200 can include various software modules or applications for performing its functions. For example, the authorization system 200 can include a workflow engine for managing requests received from the transaction systems 210, transmitting messages to users to obtain approvals, waiting to receive approvals from users prior to executing subsequent operations, communicating the user's approval of a transaction to the appropriate transaction system 210, and so on. As another example, the authorization system 200 can include a routing and delivery engine for generating the messages transmitted to the users according to the users' contact preferences, publishing the messages to the relevant notification system to deliver the message in the preferred format, and receiving replies and/or approvals from the users to the messages. In one aspect, the workflow engine and/or routing and delivery engine can manage expiration timers for user approvals. In this aspect, if user approval is not received within a particular time period, then the user approval request expires and any subsequently received user approval received in response to the confirmation message disregarded with respect to approving the particular transaction. This aspect of the authorization system 200 ensures that user approvals are only honored for a particular amount of time. In some aspects, if the workflow engine and/or routing and delivery engine receive a stale confirmation, then the authorization system 200 can transmit a message to the client indicating that the user approval request has expired (and has thus been disregarded) and/or reinitiate the process for obtaining user approval.

The authorization system 200 provides a centralized system for obtaining user approval for transactions that is agnostic to the type and structure of the originating transaction system for the request, obviating the need for each individual transaction system to separately and independently obtain user approval for its own transactions. Further, the authorization system 200 reduces transaction times and improves the client experience by immediately and automatically notifying clients of required approvals for transactions and allowing clients to securely provide approvals for the transactions via their mobile phone. In some aspects, the authorization system 200 also reduces transaction times by allowing for bulk approval of transactions across multiple different transaction systems 210 by responding to a single approval message. Still further, the authorization system 200 reduces fraud by superseding outdated methods for obtaining approval from clients (e.g., faxes or phone calls). Still further, the authorization system 200 reduces administrative expenses by eliminating the need for any forms or faxes to be handled by branch personnel for the firm. Finally, the authorization system 200 eliminates administrative errors by obviating the need for branch personnel to manually enter data into forms or client records.

In various aspects, the authorization system 200 can be colocated with or located remotely from one or more of the transaction systems 210 and/or the user contact database 220. In various aspects, the authorization system 200 can be connected to the transaction systems 210 and/or the user contact database 220 via wired or wireless connections.

The computer systems described herein, such as and including the authorization computer system 200 and the transaction computer systems 210, could be implemented with one or a number (e.g., a network or cluster) of computer devices, such as servers, mainframes, etc. The computer systems may comprise one or more processors (e.g., the processor 202) and computer memory (e.g., the memory 204). The processors may comprise CPUs and/or GPUs. The computer memory may comprise primary storage (e.g., ROM, RAM) and/or secondary storage (e.g., HDD, flash, SSD), for example.

The software modules described herein may be implemented as software code to be executed by the processor(s) of the computing systems using any suitable computer language, such as, for example, JavaScript, C #, C++, or Python using, for example, functional or object-oriented techniques. The software code may be stored as a series of instructions or commands in the computer memories.

The examples presented herein are intended to illustrate potential and specific implementations of the present invention. It can be appreciated that the examples are intended primarily for purposes of illustration of the invention for those skilled in the art. No particular aspect or aspects of the examples are necessarily intended to limit the scope of the present invention.

Further, it is to be understood that the figures and descriptions of the present invention have been simplified to illustrate elements that are relevant for a clear understanding of the present invention, while eliminating, for purposes of clarity, other elements. While various embodiments have been described herein, it should be apparent that various modifications, alterations, and adaptations to those embodiments may occur to persons skilled in the art with attainment of at least some of the advantages. The disclosed embodiments are therefore intended to include all such modifications, alterations, and adaptations without departing from the scope of the embodiments as set forth herein. 

1. A computer-implemented method for obtaining user approval for a transaction, the method comprising: receiving, by a computer system communicably coupled to a plurality of transaction systems, a request from a requesting transaction system of the plurality of transaction systems, the request associated with the transaction and a user identity; retrieving, by the computer system from a user communication preference database of the computer system, a communication preference corresponding to the user identity; transmitting, by the computer system, a message to a user according to the communication preference; wherein the message is affirmatively actionable by the user to approve the transaction; receiving, by the computer system, confirmation that the user has approved the request; and transmitting, by the computer system, approval for the request to the requesting transaction system to cause the requesting transaction system to execute the transaction, such that the computer system processes requests from any of the plurality of transaction systems.
 2. The computer-implemented method of claim 1, wherein the transaction comprises a first transaction, the request comprises a first request, and the requesting transaction system comprises a first requesting transaction system, the method further comprising: receiving, by the computer system, a second request from a second requesting transaction system of the plurality of transaction systems, the second request associated with a second transaction and the user identity; and transmitting, by the computer system, approval for the second request to the second requesting transaction system to cause the second requesting transaction system to execute the second transaction.
 3. The computer-implemented method of claim 2, wherein the message is affirmatively actionable by the user to approve both the first transaction and the second transaction.
 4. The computer-implemented method of claim 2, wherein the message comprises a first message that is affirmatively actionable by the user to approve the first transaction, the method further comprising: transmitting, by the computer system, a second message to the user according to the communication preference; wherein the second message is affirmatively actionable by the user to approve the second transaction.
 5. The computer-implemented method of claim 1, wherein the message comprises a confirmation link that, when clicked, transmits approval to the computer system.
 6. The computer-implemented method of claim 1, wherein the message comprises a prompt to respond affirmatively thereto to approve the transaction.
 7. The computer-implemented method of claim 1, wherein the message is selected from the group consisting of a text message, a push notification, an email, or any combination thereof.
 8. The computer-implemented method of claim 1, wherein the plurality of transaction systems comprise at least one of a wire transfer transaction system, a trading transaction system, a bill pay transaction system, or any combination thereof.
 9. A computer system for obtaining user approval for a transaction, the computer system communicably coupled to a plurality of transaction systems, the computer system comprising: a processor; and a memory coupled to the processor, the memory storing instructions that, when executed by the processor, cause the computer system to: receive a request from a requesting transaction system of the plurality of transaction systems, the request associated with the transaction and a user identity; retrieve a communication preference corresponding to the user identity; transmit a message to a user according to the communication preference; wherein the message is affirmatively actionable by the user to approve the transaction; receive confirmation that the user has approved the request; and transmit approval for the request to the requesting transaction system to cause the requesting transaction system to execute the transaction.
 10. The computer system of claim 9, wherein: the transaction comprises a first transaction; the request comprises a first request; the requesting transaction system comprises a first requesting transaction system; and the memory stores further instructions that, when executed by the processor, cause the computer system to: receive a second request from a second requesting transaction system, the second request associated with a second transaction and the user identity; and transmit approval for the second request to the second requesting transaction system to cause the second requesting transaction system to execute the second transaction.
 11. The computer system of claim 10, wherein the message is affirmatively actionable by the user to approve both the first transaction and the second transaction.
 12. The computer system of claim 10, wherein: the message comprises a first message that is affirmatively actionable by the user to approve the first transaction; the memory stores further instructions that, when executed by the processor, cause the computer system to transmit a second message to the user according to the communication preference; and the second message is affirmatively actionable by the user to approve the second transaction.
 13. The computer system of claim 9, wherein the message comprises a confirmation link that, when clicked, transmits approval to the computer system.
 14. The computer system of claim 9, wherein the message comprises a prompt to respond affirmatively thereto to approve the transaction.
 15. The computer system of claim 9, wherein the message is selected from the group consisting of a text message, a push notification, an email, or any combination thereof.
 16. The computer system of claim 9, wherein the plurality of transaction systems comprise at least one of a wire transfer transaction system, a trading transaction system, a bill pay transaction system, or any combination thereof.
 17. A computer network for obtaining user approval for a transaction, the computer network comprising: a plurality of transaction computer systems programmed to execute transactions; a user communication preference database; and an authorization computer system communicably coupled to the transaction computer systems and the user communication preference database, the authorization computer system comprising: a processor; and a memory coupled to the processor, the memory storing instructions that, when executed by the processor, cause the authorization computer system to: receive a request from a requesting transaction computer system of the plurality of transaction computer systems, the request associated with the transaction and a user identity; retrieve a communication preference corresponding to the user identity from the user communication preference database; transmit a message to a user according to the communication preference; wherein the message is affirmatively actionable by the user to approve the transaction; receive confirmation that the user has approved the request; and transmit approval for the request to the requesting transaction computer system to cause the requesting transaction computer system to execute the transaction.
 18. The computer network of claim 17, wherein: the transaction comprises a first transaction; the request comprises a first request; the requesting transaction computer system comprises a first requesting transaction computer system; and the memory stores further instructions that, when executed by the processor, cause the authorization computer system to: receive a second request from a second requesting transaction computer system of the plurality of transaction computer systems, the second request associated with a second transaction and the user identity; and transmit approval for the second request to the second requesting transaction computer system to cause the second requesting transaction computer system to execute the second transaction.
 19. The computer network of claim 18, wherein the message is affirmatively actionable by the user to approve both the first transaction and the second transaction.
 20. The computer network of claim 18, wherein: the message comprises a first message that is affirmatively actionable by the user to approve the first transaction; the memory stores further instructions that, when executed by the processor, cause the authorization computer system to transmit a second message to the user according to the communication preference; and the second message is affirmatively actionable by the user to approve the second transaction.
 21. The computer network of claim 17, wherein the message comprises a confirmation link that, when clicked, transmits approval to the authorization computer system.
 22. The computer network of claim 17, wherein the message comprises a prompt to respond affirmatively thereto to approve the transaction.
 23. The computer network of claim 17, wherein the message is selected from the group consisting of a text message, a push notification, an email, or any combination thereof.
 24. The computer network of claim 17, wherein the plurality of transaction computer systems comprise at least one of a wire transfer transaction system, a trading transaction system, a bill pay transaction system, or any combination thereof. 